Description: CVE-2014-0466: fixps does not invoke gs with -dSAFER
 A malicious PostScript file could delete files with the privileges of
 the invoking user.
Origin: vendor
Bug-Debian: http://bugs.debian.org/742902
Author: Salvatore Bonaccorso <carnil@debian.org>
Last-Update: 2014-03-28

--- a/contrib/fixps.in
+++ b/contrib/fixps.in
@@ -389,7 +389,7 @@
   	eval "$command" ;;
       gs)
         $verbose "$program: making a full rewrite of the file ($gs)." >&2
-  	$gs -q -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
+  	$gs -q -dSAFER -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
     esac
   )
 fi
--- a/contrib/fixps.m4
+++ b/contrib/fixps.m4
@@ -307,7 +307,7 @@
   	eval "$command" ;;
       gs)
         $verbose "$program: making a full rewrite of the file ($gs)." >&2
-  	$gs -q -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
+  	$gs -q -dSAFER -dNOPAUSE -dBATCH -sDEVICE=pswrite -sOutputFile=- -c save pop -f $file ;;
     esac
   )
 fi
about</a><a href='/guix/'>summary</a><a href='/guix/refs/?id=37d52f6e4699030cf957da306fa9b66396eb9d71'>refs</a><a class='active' href='/guix/log/doc/images'>log</a><a href='/guix/tree/doc/images?id=37d52f6e4699030cf957da306fa9b66396eb9d71'>tree</a><a href='/guix/commit/doc/images?id=37d52f6e4699030cf957da306fa9b66396eb9d71'>commit</a><a href='/guix/diff/doc/images?id=37d52f6e4699030cf957da306fa9b66396eb9d71'>diff</a></td><td class='form'><form class='right' method='get' action='/guix/log/doc/images'>
<input type='hidden' name='id' value='37d52f6e4699030cf957da306fa9b66396eb9d71'/><select name='qt'>
<option value='grep'>log msg</option>
<option value='author'>author</option>
<option value='committer'>committer</option>
<option value='range'>range</option>
</select>
<input class='txt' type='search' size='10' name='q' value=''/>
<input type='submit' value='search'/>
</form>
</td></tr></table>
<div class='path'>path: <a href='/guix/log/?id=37d52f6e4699030cf957da306fa9b66396eb9d71'>root</a>/<a href='/guix/log/doc?id=37d52f6e4699030cf957da306fa9b66396eb9d71'>doc</a>/<a href='/guix/log/doc/images?id=37d52f6e4699030cf957da306fa9b66396eb9d71'>images</a></div><div class='content'><table class='list nowrap'><tr class='nohover'><th class='left'>Age</th><th class='left'>Commit message (<a href='/guix/log/doc/images?id=37d52f6e4699030cf957da306fa9b66396eb9d71&amp;showmsg=1'>Expand</a>)</th><th class='left'>Author</th></tr>
<tr><td><span title='2016-01-29 20:21:54 +0300'>2016-01-29</span></td><td><a href='/guix/commit/doc/images?id=710fa231f03633fe243b52635479d591946fec44'>guix system: Rename 'dmd-graph' to 'shepherd-graph'.</a><span class='msg-avail'>...</span></td><td>Alex Kost</td></tr>
<tr><td><span title='2016-01-29 20:21:53 +0300'>2016-01-29</span></td><td><a href='/guix/commit/doc/images?id=d4053c710bc2c7a4f624ba2d72438d8f289ad569'>services: Rename 'dmd' services to 'shepherd'.</a><span class='msg-avail'>...</span></td><td>Alex Kost</td></tr>
<tr><td><span title='2016-01-12 17:47:36 +0100'>2016-01-12</span></td><td><a href='/guix/commit/doc/images?id=d33fa0c71435396280aff94e7608c5c5be0e06a4'>doc: Show bootstrapping at the package level.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2015-11-02 22:25:12 +0100'>2015-11-02</span></td><td><a href='/guix/commit/doc/images?id=af4c3fd5e37d477bffce167909fbc0776a860204'>services: Add 'profile-service-type'.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2015-11-02 22:25:11 +0100'>2015-11-02</span></td><td><a href='/guix/commit/doc/images?id=d62e201cfd0f1e48c14586489d0e2b80ce943d4f'>services: Add 'system-service-type'.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2015-10-15 23:11:29 +0200'>2015-10-15</span></td><td><a href='/guix/commit/doc/images?id=3d2a9c8c8e65ed12e8395e744d3759fa2dd2edb8'>doc: Regenerate 'guix graph' examples.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2015-10-14 21:39:06 +0200'>2015-10-14</span></td><td><a href='/guix/commit/doc/images?id=6f305ea5fdb239bdac5ab9c1d7b837f3177a025a'>guix system: Add 'dmd-graph' command.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>
<tr><td><span title='2015-10-10 22:55:15 +0200'>2015-10-10</span></td><td><a href='/guix/commit/doc/images?id=0adfe95a3eee335847c3127edde3de550e692440'>services: Introduce extensible services.</a><span class='msg-avail'>...</span></td><td>Ludovic Courtès</td></tr>

Age	Commit message (Expand)	Author
2016-01-29	guix system: Rename 'dmd-graph' to 'shepherd-graph'....	Alex Kost
2016-01-29	services: Rename 'dmd' services to 'shepherd'....	Alex Kost
2016-01-12	doc: Show bootstrapping at the package level....	Ludovic Courtès
2015-11-02	services: Add 'profile-service-type'....	Ludovic Courtès
2015-11-02	services: Add 'system-service-type'....	Ludovic Courtès
2015-10-15	doc: Regenerate 'guix graph' examples....	Ludovic Courtès
2015-10-14	guix system: Add 'dmd-graph' command....	Ludovic Courtès
2015-10-10	services: Introduce extensible services....	Ludovic Courtès